STIGQter: STIG Summary: MS Exchange 2010 Edge Transport Server STIG Version: 1 Release: 15 Benchmark Date: 26 Apr 2019:

Email software must be monitored for change on INFOCON frequency schedule.

DISA Rule

SV-44040r1_rule

Vulnerability Number

V-33620

Group Title

Exch-3-003

Rule Version

Exch-3-003

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Implement a process to compare software against a baseline (*.exe, *.bat, *.com, *.cmd, and *.dll) on a frequency required by the prevailing INFOCON level.

Document the process and output artifacts in the EDSP.

Check Contents

Access the EDSP baseline section and determine the process and frequency for identifying software changes (*.exe, *.bat, *.com, *.cmd, and *.dll) on servers against a baseline.

Examine artifacts identified as outputs of this process.

If baseline comparisons are not done on the INFOCON-required schedule, this is a finding.

Vulnerability Number

V-33620

Documentable

False

Rule Version

Exch-3-003

Severity Override Guidance

Access the EDSP baseline section and determine the process and frequency for identifying software changes (*.exe, *.bat, *.com, *.cmd, and *.dll) on servers against a baseline.

Examine artifacts identified as outputs of this process.

If baseline comparisons are not done on the INFOCON-required schedule, this is a finding.

Check Content Reference

M

Target Key

1995

Comments